Formal analysis of card-based payment systems in mobile devices

Vijayakrishnan Pasupathinathan*, Josef Pieprzyk, Huaxiong Wang, Joo Yeon Cho

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference proceeding contributionpeer-review

6 Citations (Scopus)

Abstract

To provide card holder authentication while they are conducting an electronic transaction using mobile devices, VISA and MasterCard independently proposed two electronic payment protocols: Visa 3D Secure and MasterCard Secure Code. The protocols use pre-registered passwords to provide card holder authentication and Secure Socket Layer/Transport Layer Security (SSL/TLS) for data confidentiality over wired networks and Wireless Transport Layer Security (WTLS) between a wireless device and a Wireless Application Protocol (WAP) gateway. The paper presents our analysis of security properties in the proposed protocols using formal method tools: Casper and FDR2. We also highlight issues concerning payment security in the proposed protocols.

Original languageEnglish
Title of host publicationACSW Frontiers 2006 - Proc. of the Fourth Australasian Symposium on Grid Computing and e-Research, AusGrid 2006 and the Fourth Australasian Information Security Workshop (Network Security), AISW 2006
EditorsRajkumar Buyya, Tianchi Ma, Reihaneh Safavi-Naini, Chris Steketee, Willy Susilo
Place of PublicationSydney, Australia
PublisherAustralian Computer Society
Pages213-220
Number of pages8
Volume54
ISBN (Print)1920682368, 9781920682361
Publication statusPublished - 2006
Event4th Australasian Symposium on Grid Computing and e-Research, AusGrid 2006 and 4th Australasian Information Security Workshop (Network Security), AISW 2006 - Hobart, TAS, Australia
Duration: 16 Jan 200619 Jan 2006

Other

Other4th Australasian Symposium on Grid Computing and e-Research, AusGrid 2006 and 4th Australasian Information Security Workshop (Network Security), AISW 2006
CountryAustralia
CityHobart, TAS
Period16/01/0619/01/06

Fingerprint

Dive into the research topics of 'Formal analysis of card-based payment systems in mobile devices'. Together they form a unique fingerprint.

Cite this